By Andy Nallappan, Chief Technology Officer and Head of Software Business Operations, Broadcom Software\n\nIn December 2021, Broadcom Software published our blog: Predictions for 2022. We will now explore each of these predictions in more depth with this blog series. This month our topic is the Cyber Defence Centre.\n\nEnterprises and operators of critical infrastructure have long been on the front lines of cybersecurity. Most recently, new threats have been identified through our Symantec Threat Hunter team, including Lazarus, Verblecon and Daxin. And of course, the previous attacks forcing major service interruptions on large infrastructure.\n\nMore CEOs and boards of directors are taking direct oversight of cybersecurity to avoid becoming a victim of a crippling cyberattack. But putting plans in place to respond to cyber threats and establish controls that align with the organization\u2019s overall business objectives, is often easier said than done. In their planning to get their security house in order, the task can be overwhelming. Indeed, despite the increased attention to corporate security, common vulnerabilities still leave most corporate networks open to breaches.\n\n\n\nA global problem\n\nClearly, cybersecurity is a shared, global problem, one that demands a concerted, global response. This is why the availability of a new framework to equip members with the proper training, services, and technologies marks a major advance.\n\nThe Cyber Defence Centre (CDC) framework is the outgrowth of collaborative work at the International Telecommunication Union (ITU), the arm of the United Nations responsible for all matters related to information and communication technologies. The framework that ITU delegates came up with isn\u2019t just theoretical, it provides a scoring system to help CDCs determine how and by whom security services are implemented, including insourcing, outsourcing, or some combination of the two. It also indicates how a CDC should determine and implement security services to enable the security of an organization.\n\nThe document gets granular at times \u2013 but that's what's needed \u2013 codifying the services will help accelerate or align capacity building efforts. The framework establishes a state-of-the-art, multilingual, global governance approach that\u2019s available to everyone. With this document as their guide, organizations can lay out the build, management and evaluation processes that go into making a successful CDC. Ultimately, it removes any guesswork about what to do next.\n\nOf course, there\u2019s nothing mandatory here. Organizations are still responsible for setting their own policies and are free to decide how they want to allocate their resources. But for the first time, they can turn to a globally approved blueprint to step them through the process of everything from strategic management to incident response to their relationship with external parties.\n\n\n\nA common language\n\nOutsiders hearing about this for the first time may well ask themselves why organizations haven\u2019t been able to figure this out by themselves. They do. But each organization is likely to go its own way. Indeed, when we ask CISOs to define what a security operation center (SOC) is or should be, the answers are all over the map. \n\nThat presents problems because if you don\u2019t have a common language to describe the job for each constituency (private and public organizations) in a security context, countries and regions won\u2019t be able to effectively organize and collaborate around cyber defense.\n\nBut with a framework providing a guideline to build their security capabilities, organizations can be confident that they\u2019re conducting their SOC transformation around a common framework. What\u2019s more, they will be able to:\n\nThe future is here\n\nGiven how rapidly the cybersecurity world is changing, fragmented organizational responses won\u2019t be enough to fend off today\u2019s global threat actors. That\u2019s why the CDC is going to be a game-changer when it comes to cybersecurity management for 2022 and beyond. \n\nTo learn more on how Broadcom Software can help you modernize, optimize and protect your enterprise, contact us here.\n\nSee more about Why Broadcom Software is Optimistic About Global Standards in Cyber Security\n\nAbout Andy Nallappan:\n\nAndy is the Chief Technology Officer and Head of Software Business Operations for Broadcom Software. He oversees the DevOps, SaaS Platform & Operations, and Marketing for the software business divisions within Broadcom.